Be Cautious: Fraudulent Twitter Phishing Sites Emerging

Published: July 15, 2013

Warning: A new scam is circulating through Twitter direct messages (DMs) and deceptive emails, directing users to a phishing site at “twittler.com.” This scam utilizes compromised Twitter accounts to send seemingly legitimate messages. Security expert Janne Ahlberg highlights the danger, stating, “This is a particularly insidious tactic, especially when the sender is someone you know and trust. If you receive a suspicious DM or email from a familiar contact, alert them – their account has likely been hijacked by attackers.”

The fraudulent webpage mimics the Twitter login screen and attempts to capture your login credentials, using a domain name that closely resembles the official Twitter.com, with the addition of “LL.”

To stay safe, always verify your browser’s address bar to ensure you are on the legitimate Twitter site at twitter.com before entering your login information. If you input your Twitter username…

Warning: Phishing Attack Targeting Twitter Users

July 15, 2013

A concerning phishing scam has emerged, targeting Twitter users through deceptive direct messages (DMs) and counterfeit emails that direct recipients to a fraudulent website, “twittler.com.” This scheme relies on compromised Twitter accounts to deliver messages that appear trustworthy, undermining the basic trust users have in their contacts.

Security expert Janne Ahlberg has highlighted the insidious nature of this phishing tactic, underscoring the danger of receiving such messages from known individuals. Ahlberg warns that if a user encounters a suspicious DM or email from someone they recognize, it is crucial to alert them, as their account has likely been compromised by malicious actors.

The fraudulent site mimics the official Twitter login page, using a domain name that closely resembles the original, with only minor alterations—specifically, an additional “LL” in the URL. This deliberate design choice is intended to deceive users into providing their Twitter credentials, potentially leading to unauthorized access.

To protect themselves, users are advised to verify the URL in their browser address bar before attempting to log in. Ensuring the web address is precisely “twitter.com” is critical in avoiding this trap. Failure to do so may result in inadvertently sharing sensitive information with cybercriminals.

This phishing attack exemplifies several tactics outlined in the MITRE ATT&CK framework, including initial access and credential harvesting. Attackers often employ social engineering techniques to gain the trust of their targets, making it imperative for users to maintain vigilance against such manipulative approaches.

As cyber threats continue to evolve, business owners must remain aware of the tactics employed by adversaries. Phishing remains a prevalent issue, and understanding the methodology behind these attacks is essential for developing effective mitigation strategies. By fostering a culture of cybersecurity awareness and proactively addressing the risks associated with phishing, organizations can better protect their valuable digital assets from potential breach attempts.

In conclusion, as this phishing scam proliferates, it is essential for Twitter users, particularly those within the business community, to stay informed and cautious. Awareness and vigilance are vital in combating the ongoing threat posed by attackers leveraging trusted relationships for malicious gain.

Source link

Related Posts

Cyber Attack Disrupts Passport Control at Istanbul Airport

July 26, 2013

The passport control system at Istanbul Ataturk Airport’s international departure terminal experienced a cyber attack on Friday, impacting operations at another airport in the city. Passengers faced lengthy delays, with many waiting hours as flight departures were postponed due to the system shutdown at both locations. Authorities were able to restore functionality after some time.

Reports indicated that the passport control system at Sabiha Gokcen International Airport was also affected by issues stemming from the Polnet data system managed by the Istanbul provincial security directorate. Preliminary investigations suggest the systems may have been compromised by malware, though authorities are still determining whether any user information was extracted from the affected machines.

As of now, there has been no claim of responsibility for the cyber attack. This incident is part of a worrying trend of malware attacks targeting critical infrastructure. Cybersecurity has become an increasingly critical concern in recent years.

Chinese Hackers Exposed by U.S. Water Control System Decoy

August 5, 2013

A notorious hacking group from China, known as APT1 or Comment Crew, potentially affiliated with the Chinese military, has been caught infiltrating a simulated United States water control system, also referred to as a honeypot. Kyle Wilhoit, a researcher from Trend Micro, disclosed the findings at the BlackHat Conference this past Wednesday.

Back in December, the hackers targeted a water control system for a U.S. municipality, unaware it was a ruse set up by Wilhoit. The decoy utilized a Word document embedded with malicious software, allowing for complete access.

These honeypots closely resembled the ICS/SCADA devices employed in critical infrastructure for power and water facilities. The setup, which employed cloud software, produced realistic web-based login and configuration screens for local water plants, making them look as though they were based in various countries, including Ireland, Russia, Singapore, China, Japan, Australia, Brazil, and the U.S. Researchers have traced the activity back to the APT1 Group, which was previously linked to by the security firm Mandiant.